Configuring IPv4

You must log in as a user with admin privileges to configure IPv4 network settings.

Procedure

Command or Action

Purpose

Step 1

Server# scopecimc

Enters the CIMC command mode.

Step 2

Server /cimc # scopenetwork

Enters the CIMC network command mode.

Step 3

Server /cimc/network # setdhcp-enabled {yes | no}

Selects whether the CIMC uses DHCP.

Note

If DHCP is enabled, we recommend that the DHCP server be configured to reserve a single IP address for the CIMC. If the CIMC is reachable through multiple ports on the server, the single IP address must be reserved for the full range of MAC addresses of those ports.

Network Security

The CIMC uses IP blocking as network security. IP blocking prevents the connection between a server or website and certain IP addresses or ranges of addresses. IP blocking effectively bans undesired connections from those computers to a website, mail server, or other Internet servers.

IP banning is commonly used to protect against denial of service (DoS) attacks. CIMC bans IP addresses by setting up an IP blocking fail count.

Configuring Network Security

Configure network security if you want to set up an IP blocking fail count.

Before You Begin

You must log in as a user with admin privileges to configure network security.

Procedure

Command or Action

Purpose

Step 1

Server# scopecimc

Enters the CIMC command mode.

Step 2

Server /cimc # scopenetwork

Enters the CIMC network command mode.

Step 3

Server /cimc/network # scopeipblocking

Enters the IP blocking command mode.

Step 4

Server /cimc/network/ipblocking # setenabled {yes | no}

Enables or disables IP blocking.

Step 5

Server /cimc/network/ipblocking # setfail-countfail-count

Sets the number of times a user can attempt to log in unsuccessfully before the system locks that user out for a specified length of time.

The number of unsuccessful login attempts must occur within the time frame specified in the IP Blocking Fail Window field.

Enter an integer between 3 and 10.

Step 6

Server /cimc/network/ipblocking # setfail-windowfail-seconds

Sets the length of time, in seconds, in which the unsuccessful login attempts must occur in order for the user to be locked out.

Enter an integer between 60 and 120.

Step 7

Server /cimc/network/ipblocking # setpenalty-timepenalty-seconds

Sets the number of seconds the user remains locked out if they exceed the maximum number of login attempts within the specified time window.